OSPOCO Joins Forces with the OpenChain Project

by VanL

OSPOCO is now an official partner of the OpenChain Project. As an official partner, OSPOCO is able to help companies toward OpenChain ISO/IEC 5230 compliance and can act as a third-party certifier for organizations that need audits.

The OpenChain 2.1 / ISO/IEC 5230 standard has always been a core part of OSPOCO's services. OpenChain sets the standard for open source compliance, offering best practices and guidelines for managing open source software in the supply chain. It continues to improve, including an updated security assurance specification and tools for continuous compliance.

What is new is the increasing importance of OpenChain certification. With compliance and supply chain security becoming top-of-mind issues for many organizations, we are seeing more use of the OpenChain standard to define what "open source compliance" means between vendors.

Clients can now use OSPOCO to assist with their own OpenChain certification and to serve as a verifier and auditor to ensure vendor OpenChain compliance. By adopting a consistent standard throughout their supply chain, companies can be confident in both their own open source programs and in the compliance of their upstream vendors.

In short, open source compliance across your entire supply chain just got a whole lot simpler.

Press release below ( Link on the OpenChain site ).


OSPOCO and Taylor English Join The OpenChain Partner Program

TOKYO, JAPAN: OSPOCO and Taylor English are the latest participants in the OpenChain Project official partner program. OSPOCO provides on-demand, scalable open source program office support across community, technical and communication areas. Taylor English provides attorney oversight for all compliance matters and legal advice integrated with OSPOCO technical findings.

“We are delighted to work with OSPOCO on expanding the professional service ecosystem dedicated to OpenChain ISO/IEC 5230 and the OpenChain Security Assurance Specification,” says Shane Coughlan, OpenChain General Manager. “The increased awareness of predictable, sustainable open source process management in the supply chain is matched by an increased need for experienced providers. We look forward to investing time into ensuring growth in the North American market throughout 2023 matches the traction we have seen in Asia and Europe in 2022.”

“Following the OpenChain specifications is the best way for companies to understand and have control over their open source processes,” says Van Lindberg, CEO of OSPOCO and partner at Taylor English. “The OpenChain specifications are our blueprint for helping our clients mitigate supply chain risk and improve their open source ROI. We look forward to helping many more organizations achieve and maintain full compliance.”